Legal claims defining the scope of protection, as filed with the USPTO.
1. A system for securing an Internet-connected device from an online security threat, the system comprising: at least one network-connected device; an article of manufacture comprising a network traffic control device comprising one or more devices for receiving and either allowing or blocking at least one data packet destined for the at least one network-connected device, the network traffic control device comprising: a processor and associated memory; at least one network interface card for receiving and transmitting the at least one data packet; a display monitor to communicate a name and a current status of one or more traffic requesters; and a user input device for receiving an instruction from a user; wherein the network traffic control device secures the at least one network-connected device when the network-connected device attempts to communicate with an Internet protocol (IP) address of another network-connected device; a network connection that communicatively connects the network traffic control device to the at least one network-connected device; and a communications network for transmitting the at least one data packet to and from the network traffic control device.
2. The system of claim 1 , wherein the at least one network-connected device attempts to communicate with the IP address of at least one other network-connected device; and wherein the network traffic control device displays a traffic requester name and associated current status representing the at least one other device.
3. The system of claim 1 , wherein the network traffic control device comprises a computer, a server, or any other suitable computing device.
4. The system of claim 1 , wherein the network-connected device comprises a television, a radio, a stereo, a home entertainment system, a cable box, a satellite television box, a speaker, a printer, a home security camera, a wall plug adapter, a motion detector, a home alarm system or device, a thermostat, a timer, a light timer, a sprinkler system, a sprinkler system timer, a light bulb, a household appliance, or any other suitable device comprising a connection to the communications network.
5. The system of claim 1 , wherein the memory of the network traffic control device comprises at least one recognized media access control (MAC) address.
6. The system of claim 5 , wherein for each at least one data packet received by the network traffic control device, the network traffic control device performs a check to determine whether the at least one MAC address associated with each such at least one data packet is a MAC address that is known to the network traffic control device or a new and unknown MAC address, wherein the check is performed by searching the memory of the network traffic control device for the presence of the at least one MAC address.
7. The system of claim 5 , wherein the memory comprises a searchable data structure, wherein the searchable data structure comprises a MAC group structure, an array, a binary tree, a linked list, a red-black tree, a table, or any other searchable data structure for organizing data that comprises the at least one MAC address.
8. The system of claim 5 , wherein each at least one MAC address is assignable to a network traffic group ID of one or more network traffic group IDs, wherein the one or more network traffic group IDs comprise at least one known MAC address, and wherein one or more new network traffic group IDs are creatable using the user input device of the network traffic control device.
9. The system of claim 8 , wherein for each at least one data packet received by the network traffic control device, the network traffic control device performs a check to determine whether the at least one MAC address associated with each such at least one data packet is a MAC address that is known to the network traffic control device or a new and unknown MAC address, wherein the check is performed by searching the memory of the network traffic control device for the presence of the at least one MAC address.
10. The system of claim 9 , wherein if the at least one MAC address of the at least one data packet received by the network traffic control device is known, the network traffic control device determines to which network traffic group ID of the one or more network traffic group IDs the at least one MAC address of the at least one data packet is assigned based on MAC address data in the memory.
11. The system of claim 9 , wherein if the at least one MAC address of the at least one data packet received by the network traffic control device is new and unknown, the network traffic control device permits the at least one MAC address to be assigned to an existing network traffic group ID or to a new network traffic group ID using the user input device.
12. The system of claim 11 , wherein the user input device of the network traffic control device is usable to assign each network traffic group ID a unique annotation that is viewable on the display monitor; and wherein the new network traffic group ID is assignable a unique annotation using the user input device; and wherein the unique annotation indicates both the network traffic group ID and the current status that visually indicates whether the at least one data packet from the at least one MAC address is allowed or blocked.
13. The system of claim 12 , wherein the current status that is allowed permits communication of the at least one data packet from an allowed MAC address assigned to an allowed network traffic group ID comprising a unique annotation that indicates the current status as allowed; and wherein the status that is blocked denies communication of the at least one data packet from a blocked MAC address assigned to a blocked network traffic group ID comprising a unique annotation that indicates the current status as blocked.
14. The system of claim 13 , wherein if the at least one data packet originates from a MAC address associated with a network traffic group ID comprising a current status that is allowed, the at least one data packet is forwarded to the at least one network-connected device; and wherein if the at least one data packet originates from a MAC address associated with a network traffic group ID comprising a current status that is blocked, the at least one data packet is discarded and is not forwarded to the at least one network-connected device.
15. The system of claim 1 , wherein the system allows or blocks a process for which initiation is sought by allowing or blocking the instruction received from the user input device.
16. An article of manufacture comprising a network traffic control device for securing a first network-connected device from an online security threat when the first network-connected device is communicating with a second network-connected device, the network traffic control device comprising: a device for receiving at least one data packet to or from the first network-connected device; wherein the at least one data packet contains a media access control (MAC) address of the first network-connected device and an IP address of a second network-connected device; a user input device for receiving an instruction from a user; a device for either allowing or blocking the transmission of the at least one data packet; a memory for storing MAC address data related to MAC addresses that the network traffic control device recognizes as known, wherein each MAC address is associated in the memory with a network traffic group ID of a group of one or more network traffic group IDs; and an interface for assigning each MAC address to one network traffic group ID using the user input device and using the user input device to designate at least one allowed or blocked traffic requester for each at least one network traffic group ID; wherein the device for either allowing or blocking the transmission of the at least one data packet allows the transmission of the at least one data packet if the MAC address of the first network-connected device is associated with a network traffic group ID and the IP address of the second network-connected device belongs to an allowed traffic requester for that network traffic group ID and blocks the transmission of the at least one data packet if the MAC address of the first network-connected device is associated with a network traffic group ID and the IP address of the second network-connected device belongs to a blocked traffic requester for that network traffic group ID.
17. The network traffic control device of claim 16 , wherein the network traffic control device also controls the transmission of a data packet being transmitted by the network-connected device to another device connected to a communications network to which the network traffic control device is connected.
18. The network traffic control device of claim 16 , wherein the network traffic control device is communicatively connected to the network-connected device by a network connection for transmitting data packets to or from the network traffic control device.
19. The network traffic control device of claim 16 , wherein the network traffic control device is communicatively connected to a communications network for transmitting the at least one data packet to and from the network traffic control device to another device connected to the communications network.
20. The network traffic control device of claim 16 , further comprising a display monitor for displaying the interface; wherein the allow status and block status are each visually represented on the interface on the display monitor.
21. A network traffic control system for securing a network-connected device from an online security threat, the system comprising a network traffic control device that translates one or more remote IP addresses contained in one or more data packets that desire to enter or exit one or more network interface cards into one or more traffic requester names; wherein the network traffic control device comprises: a processor and associated memory; and the at least one network interface card for receiving and transmitting the one or more data packets; wherein the network traffic control device secures the at least one network-connected device when the network-connected device attempts to communicate with a communications network; and a display connected to the network traffic control device for dynamically displaying one or more traffic requester names and their associated status at the time each of the one or more data packets attempts to enter or exit the one or more network interface cards; wherein the network traffic control device comprises an interface viewable on the display to allow a user to change the status of one or more of the one or more traffic requester names at the time each of the one or more data packets attempts to enter or exit the one or more network interface cards.
22. The network traffic control system of claim 21 , wherein the one or more traffic requester names comprise at least one domain name.
23. The network traffic control system of claim 21 , wherein the one or more traffic requester names comprise at least one domain name owner's name.
24. A system for securing a network-connected device from an online security threat, the system comprising: a network traffic control device, further comprising software, for translating an Internet protocol (IP) address contained by network traffic into a user recognizable name, wherein the network traffic control device also comprises a processor and associated memory, a user input device for receiving an instruction from a user, and at least one network interface card for receiving and transmitting the one or more data packets; wherein the network traffic control device secures the at least one network-connected device when the network-connected device attempts to communicate with a communications network; and a display connected to the network traffic control device to display the user recognizable name at a time when blocked network traffic, which contains the IP address, attempts to communicate to or from the IP address of another network-connected device.
25. The system of claim 24 , further comprising a means for toggling using the user input device to change a status of the network traffic comprising the IP address between a blocked status and an allowed status while the user recognizable name is displayed on the display, wherein the user input device is manipulable to operate the means for toggling.
26. The system of claim 25 , wherein the user recognizable name is a domain name or a domain name owner's name.
27. The system of claim 24 , wherein the user recognizable name is a domain name or a domain name owner's name.
28. A system for securing a network-connected device from an online security threat, the system comprising: a network traffic control device, further comprising software, for translating an Internet protocol (IP) address contained by network traffic into a user recognizable name, wherein the network traffic control device also comprises a processor and associated memory, a user input device for receiving an instruction from a user, and at least one network interface card for receiving and transmitting the one or more data packets; wherein the network traffic control device secures the at least one network-connected device when the network-connected device attempts to communicate with a communications network; a display connected to the network traffic control device to display the user recognizable name at a time when allowed network traffic, which contains the IP address, attempts to communicate to or from the IP address of another network-connected device; and a means for toggling operable by the user input device for changing a status of the network traffic comprising the IP address between an allowed status and a blocked status while the user recognizable name is displayed on the display.
29. The system of claim 28 , wherein the user recognizable name is a domain name or a domain name owner's name.
30. A security platform for enhancing computer and network security, the security platform comprising: at least one network-connected device, wherein the at least one network-connected device comprises at least one network interface card for receiving and transmitting data packets; at least one network traffic control device comprising: at least one network interface card for receiving and transmitting data packets; a display interface; a user input device; a processor and associated memory for recording and retrieval of data; for at least one DNS reply, a process for recording at least one received domain name and an associated IP address of the at least one received domain name in the memory; for the at least one DNS reply, a process for setting a default status in association with the at least one received domain name and for recording a representation of the at least one received domain name and its associated default status in the memory; a process for intercepting at least one non-DNS IP-level packet destined to or transmitted from the at least one network-connected device; for the at least one non-DNS IP-level packet, a process for determining the domain name of the remote host to which communication to the at least one network-connected device is attempted; wherein the process for determining the domain name retrieves: (i) the at least one domain name that is associated with the IP address from the data recorded in the memory, and (ii) the current status associated with the at least one domain name from the data recorded in the memory, and wherein the representation of the domain name and a representation of the current status of the domain name are displayed on the display interface; and a process executed in response to an instruction from the user input device to change the current status for the at least one domain name displayed in the representation; wherein the status change for the domain name is recorded as the current status; and wherein the at least one non-DNS IP-level packet associated with the at least one network-connected device is discarded if the current status is blocked.
31. The security platform of claim 30 , wherein the at least one network-connected device is communicatively connected to a network such that the at least one network traffic control device receives a MAC address of the at least one network-connected device within the communication data packets; and wherein the network traffic control device, in response to at least one newly encountered MAC address from the at least one network-connected device, receives user input via the user input device to assign the MAC address to a network traffic group ID.
32. The security platform of claim 31 , wherein the display of the domain name and its associated status is presented along with a representation of each network traffic group ID attempting to communicate with the domain name at the time one or more members of the network traffic group ID attempts to communicate with the domain name.
33. The security platform of claim 32 , wherein at least one domain name associated with at least one network traffic group ID is selectable by the user at the time one or more members of the network traffic group ID is attempting to communicate with the domain name; wherein the selection causes a change in status of the domain name solely for the network traffic group IDs selected by the user whereas the current status of all other network traffic group IDs remains unaffected; and wherein at least one non-DNS IP-level packet destined to or received from the at least one network-connected device is allowed if the current status of the domain name is allowed for the network traffic group ID to which the at least one network-connected device belongs or is blocked if the current status of the domain name is blocked for the network traffic group ID to which the at least one network-connected device belongs.
Unknown
January 30, 2018
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.